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8) n Claim(s) are subject to restriction and/or election requirement. 
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DETAILED ACTION 



Claim Rejections - 35 USC § 102 



1 . The following is a quotation of the appropriate paragraphs of 35 U.S.C. 102 that 
form the basis for the rejections under this section made in this Office action: 

A person shall be entitled to a patent unless - 

(e) the invention was described in a patent granted on an application for patent by another filed in the 
United States before the invention thereof by the applicant for patent, or on an international application 
by another who has fulfilled the requirements of paragraphs (1 ), (2), and (4) of section 371 (c) of this 
title before the invention thereof by the applicant for patent. 

The changes made to 35 U.S.C. 102(e) by the American Inventors Protection Act 
of 1999 (AlPA) do not apply to the examination of this application as the application 
being examined was not (1) filed on or after November 29, 2000, or (2) voluntarily 
published under 35 U.S.C. 122(b). Therefore, this application is examined under 35 
U.S.C. 102(e) prior to the amendment by the AlPA (pre-AlPA 35 U.S.C. 102(e)). 
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1. Claim 1 is rejected under U.S.C. 102(e) as being anticipated by Grantges, Jr. 

As per claim 1 , Grantges discloses a method of enabling a client terminal user to 
access target resources managed by a set of resource managers within an enterprise 
computing environment, comprising: 

• Authenticating the user to establish a user primary identity (column 2, lines 64-66); 

• Mapping the user primary identity to a set of user secondary identities (column 5, 
lines 65-67, column 8, lines 53-59, 62-65); 

• Authenticating the user to the resource managers using the set of user secondary 
identities (column 4, lines 49-52); 

• Following authentication using the set of user secondary identities, forwarding 
resource requests to the resource managers (column 3, lines 26-28); 

• Returning replies received from the resource managers back to the user (column 7, 
lines 13-14, 17-20). 

As per claim 2, Grantges discloses: 

• The user primary identity is mapped to the set of user secondary identities by a sign- 
on service (column 8, lines 53-56). 



As per claim 3, Grantges discloses: 



Application/Control Number: 09/487,187 Page 4 

Art Unit: 2157 

• Authenticating the step of authenticating a trusted server to the sign-on service prior 
to mapping the user primary identity to the set of user secondary identities (column 
5, lines 40^2). 

As per claim 4, Grantges discloses: 

• The trusted server is authenticated to the sign-on service before the step of 
authenticating the user to establish the user primary identity (column 5, lines 40-42). 

As per claim 5, Grantges discloses: 

• Trusted server is authenticated to the sign-on service after the step of authenticating 
the user to establish the user primary identity (column 5, lines 40-42). 

As per claim 6, Grantges discloses: 

• The user is authenticated to establish the user primary identity using an 
authentication service associated with the trusted server (column 5, lines 65-67, 
column 8, lines 53-59, 62-65) 

As per claim 8, Grantges discloses: 

• The client terminal user accesses the enterprise computing environment over the 
Internet (column 2, lines 65-67). 



As per claim 9, Grantges discloses: 
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• The user is authenticated to a given resource manager using an authentication 
service associated with the given resource manager (column 4, lines 49-52) 

As per claim 10, Grantges discloses a method for enabling a client terminal user to 
access target resources managed by a set of resource managers operative within an 
enterprise computing environment, wherein the environment has an associated sign-on 
service, comprising: 

• Responsive to a request received from a user of the client terminal, authenticating 
the user to establish an identity (column 2, lines 64-66); 

• Using the identity, accessing the sign-on service to retrieve a set of stored user 
authentication information (column 5, lines 65-67, column 8, lines 53-59, 62-65); 

• Performing a sign-on to the set of resource managers using the retrieved user 
authentication information (column 4, lines 49-52); 

• Forwarding the request to a given resource manager (column 3, lines 26-28); 

• Forwarding a reply received from the given resource manager back to the user 
(column 7, lines 13-14, 17-20). 

As per claim 1 1 , Grantges discloses a method for enabling a client terminal user to 
access target resources managed by a set of resource managers operative within an 
enterprise computing environment, wherein the environment has an associated sign-on 
service, comprising: 
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• Having the client terminal user perform primary logon to an intermediary server to 
establish a user primary identity (column 2, lines 64-66); 

• Having the intermediary server pass the user's primary identity to the sign-on service 
and in response, obtaining a set of user secondary identities that may be used in 
enabling the intermediary server to represent the client terminal user to the resource 
managers (column 5, lines 65-67, column 8, lines 53-59, 62-65); 

• Having the intermediary server perform a secondary logon to a first resource 
manager using a first user secondary identity (column 4, lines 49-52); 

• Having the intermediary server perform a secondary logon to a second resource 
manager using a second user secondary identity (column 4, lines 49-52); 

• Having the intermediary server perform resource requests at the first and second 
resource managers under the respective secondary identities (column 4, lines 49- 
52); 

• Forwarding responses back to the client terminal user (column 7, lines 13-14, 17- 
20). 

As per claim 12, discloses in an enterprise computing environment having a set of 
resource managers and a sign-on service, the improvement comprising: 

• A server for authenticating a user to establish a user primary account (column 2, 
lines 64-66); 
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• A server for cooperating with the sign-on service to delegate the user primary 
account to a set of user secondary accounts (column 5, lines 65-67, column 8, lines 
53-59, 62-65); 

• A server for logging onto the set of resource managers using the user secondary 
accounts (column 4, lines 49-52); 

• A server for passing resource requests from the user to the resource managers 
under the user secondary accounts (column 3, lines 26-28); 

As per claim 13, Grantges discloses: 

• The server passes replies to the resource requests back to the user (column 7, lines 
13-14. 17-20). 

As per claims 14 and 21, Grantges discloses in an enterprise computing 
environment having a set of resource managers and a sign-on service, comprising: 

• Means for authenticating a user to establish a user primary account (column 2, lines 
64-66); 

• Means for authenticating the server to the sign-on service (column 5, lines 40-42). 

• Means for logging onto the set of resource managers using a set of user secondary 
accounts returned from the sign-on service (column 4, lines 49-52); 

• Means for passing resource requests and associated replies between the user and 
the resource managers (column 3, lines 26-28, column 7, lines 13-14, 17-20). 
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As per claim 15, discloses: 

• Means for load balancing resource requests passed to a set of instances of a given 
resource manager ( 

As per claim 16, Grantges discloses a system comprising: 

• A set of resource managers (column 7, lines 14-20); 

• A sign-on service (column 8, lines 53-56); 

• A server comprising means for authenticating a user to establish a user primary 
account, cooperating with the sign-on service to delegate the user primary account 
to a set of user secondary accounts, logging onto the set of resource managers 
using the user secondary accounts, passing resource requests from the user to the 
resource managers under the user secondary accounts (column 2, lines 64-66, 
column 4, lines 49-52, column 7, lines 13-14, 17-20). 

As per claim 17, Grantges discloses: 

• At least one resource manager comprises a set of instances (column 9, lines 6-14). 

As per claim 19, Grantges discloses: 

• The server comprises a set of instances (column 9, lines 6-14). 

As per claim 20, Grantges discloses: 

• A manager that manages the set of server instances (column 9, lines 6-14). 
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Claim Rejections - 35 USC § 103 



1. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 1 02 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

2. Claims 7, 15, and 18 are rejected under 35 U.S.C. 103(a) as being unpatenable 
over Grantges in view of Brendel et al. (hereinafter "Brendel", 5,774,660). 

As per claims 7, 15, and 18, Grantges does not explicitly disclose load balancing 
resource requests across a set of instances of a given resource manager. However, in 
an analogous art, Brendel discloses load balancing performed among nodes that have 
the requested resource (column 22, lines 65-67). 

Therefore, one of ordinary skill in the art at the time the invention was made would 
have found it obvious to implement or incorporate load balancing in Grantges's method 
in order to avoid bottleneck and single point of failure and increase the efficiency of the 
system. 



Conclusion 



3. The prior art made of record and not relied upon is considered pertinent to 
applicant's disclosure. 
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Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Barbara N Burgess whose telephone number is (703) 
305-3366. The examiner can normally be reached on M-F (8:00am-4:00pm). 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Ario Ettinene can be reached on (703) 308-7562. The fax phone numbers 
for the organization where this application or proceeding is assigned are (703) 746-7239 
for regular communications and (703) 746-7240 for After Final communications. 

Any inquiry of a general nature or relating to the status of this application or 
proceeding should be directed to the receptionist whose telephone number is (703) 305- 
3900. 

Barbara N Burgess 

Examiner 
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